Web services security evaluation considerations

Article English OPEN
Pimenidis, Elias ; Georgiadis, Christos K. (2009)

Web services development is a key theme in utilisation of the commercial exploitation of the semantic web. Paramount to the development and offering of such services is the issue of security features and the way these are applied in instituting trust amongst participants and recipients of the service. Implementing such security features is a major challenge to developers as they need to balance these with performance and interoperability requirements. Being able to evaluate the level of security offered is a desirable feature for any prospective participant. The authors attempt to address the issues of security requirements and evaluation criteria, while they discuss the challenges of security implementation through a simple web service application case.
  • References (11)
    11 references, page 1 of 2

    Booth, D., Haas, H., McCabe, F., Newcomer, E., Champion, M., Ferris, C. and Orchard, D. (2004) 'Web services architecture', W3C Working Group Note 11, February, W3C Technical Reports and Publications. Available at: http://www.w3.org/TR/ws-arch/.

    Brown, P. (2007) Succeeding with SOA: Realizing Business Value through Total Architecture. Boston, MA: Addison-Wesley.

    Casola, V., Fasolino, A.R., Mazzocca, N. and Tramontana, P. (2007) 'A policy-based evaluation framework for quality and security in service oriented architectures', Paper presented in the Proceedings of the IEEE International Conferences on Web Services ICWS 2007.

    Chatterjee, S. and Webber, J. (2004) Developing Enterprise Web Services: An Architect's Guide. NJ: Prentice Hall PTR.

    Chen, S., Zic, J., Tang, K. and Levy, D. (2007) 'Performance evaluation and modeling of web services security', Paper presented in the Proceedings of the IEEE International Conference on Web Services ICWS 2007.

    Erl, T. (2004) Service-Oriented Architecture. Upper Saddle River, NJ: Prentice Hall PTR.

    Georgiadis, C.K. and Pimenidis, E. (2007) 'Proposing an evaluation framework for B2B web services-based transactions', Paper presented in the Proceedings of the E-Activity and Leading Technologies Conference, IASK, Porto, Portugal.

    Kaye, D. (2003) Loosely Coupled: The Missing Pieces of Web Services. Marin County, California: RDS Press.

    Tang, K., Chen, S., Levy, D., Zic, J. and Yan, B. (2006) 'A performance evaluation of web services security', Paper presented in the Proceedings of the 10th IEEE International Enterprise Distributed Object Computing Conference EDOC'06.

    Van Dyke, J.W. (2004) 'Establishing federated trust networks among web services', BSc Thesis, University of Virginia.

  • Metrics
    0
    views in OpenAIRE
    0
    views in local repository
    25
    downloads in local repository

    The information is available from the following content providers:

    From Number Of Views Number Of Downloads
    ROAR at University of East London - IRUS-UK 0 25
Share - Bookmark